Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/rt8ti-r073l0lGiMYk6-ICYUQCg.roa
File: rt8ti-r073l0lGiMYk6-ICYUQCg.roa (raw, json)
Hash identifier: 01mToDjNIxWmW6i4UNvul7iNL04+tzEzFG6/2ZXGzz8=
Subject key identifier: AE:DF:2D:8B:EA:F4:EF:79:74:94:68:8C:62:4E:BE:20:26:14:40:28
Certificate issuer: /CN=1ea0a9eb47d824b51f154442481a257168394551
Certificate serial: 0182217A5BD7D561EE5E756E48172800B1BA
Authority key identifier: 1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/rt8ti-r073l0lGiMYk6-ICYUQCg.roa
Signing time: Thu 21 Jul 2022 15:57:23 +0000
ROA not before: Thu 21 Jul 2022 15:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204887
IP address blocks: 217.113.192.0/23 maxlen: 23
217.113.192.0/24 maxlen: 24
217.113.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:21:7a:5b:d7:d5:61:ee:5e:75:6e:48:17:28:00:b1:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea0a9eb47d824b51f154442481a257168394551
Validity
Not Before: Jul 21 15:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aedf2d8beaf4ef797494688c624ebe2026144028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0e:ef:44:fa:c2:e8:a8:bb:59:6a:6e:19:1d:
b8:bc:5c:02:4a:b8:f9:d2:7c:ea:5c:94:e8:e9:f0:
bf:8a:d2:28:16:38:27:c6:05:b4:c7:30:5d:d8:04:
12:81:7f:af:b4:c7:71:4d:7c:3e:08:3e:1d:18:60:
85:ea:ca:73:83:60:55:62:5b:44:77:6a:88:e4:71:
54:17:0a:e1:27:13:09:ad:f1:de:31:6f:be:dd:fc:
eb:0a:ff:62:e4:8c:ae:b0:60:6a:7c:5a:49:21:d0:
5b:52:f8:6c:d7:76:59:d1:e7:7f:0f:e7:17:29:67:
2f:0a:4f:8c:01:7f:ed:ae:79:ea:c8:e7:48:46:33:
84:45:2e:40:68:ff:f2:c4:ad:25:0d:45:9d:35:15:
2b:35:a3:bb:a6:a1:ec:96:63:a4:2e:4d:d6:22:d1:
cc:cb:37:9b:a2:73:45:65:fc:26:de:2a:a4:7b:9d:
2b:5f:79:e0:89:32:73:cc:4e:bd:09:57:40:bc:68:
61:5a:0b:77:5d:33:02:b6:dd:a0:50:26:36:54:ab:
67:61:10:1f:3f:8c:d6:de:00:d8:51:ad:03:af:92:
24:aa:dd:47:94:3e:64:a0:f1:58:72:ef:17:19:bf:
eb:b8:c8:8d:35:97:27:1a:5f:d3:08:13:0e:ef:e0:
08:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:DF:2D:8B:EA:F4:EF:79:74:94:68:8C:62:4E:BE:20:26:14:40:28
X509v3 Authority Key Identifier:
keyid:1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/rt8ti-r073l0lGiMYk6-ICYUQCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.192.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:ca:0b:36:cb:9f:9e:07:a6:86:13:82:82:3a:a9:7a:6a:86:
db:e7:8a:1b:fd:66:54:b6:49:47:48:d5:c1:d3:0b:60:90:00:
54:4e:70:b9:94:cd:b1:ac:b9:67:75:fa:fa:c4:61:38:15:a2:
ae:c3:09:a3:0d:93:50:08:e6:85:07:39:09:b2:15:7f:ac:3b:
37:6b:31:5d:34:c5:f3:f6:6c:20:26:4e:a8:5d:90:0a:82:7c:
9f:2b:ad:0d:57:52:52:32:2e:30:49:74:f7:4b:4a:86:80:af:
2d:ea:07:e0:42:08:89:74:b0:63:0c:e6:69:c3:b3:a4:f4:1b:
2e:ba:af:9f:f4:cf:0c:6c:68:22:15:e7:94:9b:fb:6c:01:0b:
cc:77:0b:e3:33:38:51:87:35:a5:c7:05:f9:43:8d:8c:02:ee:
d4:11:3b:06:a9:b5:9b:9d:03:f1:1b:8c:01:89:75:cb:2b:0e:
f4:24:61:b9:13:23:4f:e5:88:92:dc:da:8f:b8:47:5d:1b:78:
0a:a0:fa:55:c4:ba:b2:1b:07:f3:d2:72:d3:0f:54:36:0b:64:
10:07:a3:88:12:74:cc:20:f0:a5:47:21:52:a1:cf:25:1c:60:
62:77:91:17:40:45:35:84:6c:7f:a3:ad:b1:bd:60:ee:82:fb:
20:58:0d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:08 2024 by rpki-client on console-fra.rpki-client.org